Post: 3.70 has new encryption/decryption keys
Options
08-11-2011, 03:03 AM
#1
Imtravvy
Hello 
source
You must login or register to view this content.
08-11-2011, 05:46 PM
#20
-O-Z-Z-A-8-8-
At least I can fight
Originally posted by BONExHEAD
"No this won't work. Repackaging the update will change the hash check. So the PS3 would check the update and say "My ass this is official firmware"
Your PS3 would still have to be OFW 3.60+ which would disable all jailbroken features in order for it to output the new Passphrase.
Now doing it with a legit PS3 and the latest update. There is the same hash problem. To grab the passphrase is actually pretty easy. All that needs to be done is as follows and hopefully someone out there can build off the work I have already done so here goes.
Performing a MIM on a PS3 from a computer connected to the same network. This will grab the header that is needed and output in plain text the new passphrase. This can be done on a jailbroken PS3 simply because we can change the file. Now doing this method on a legit PS3 will NOT work. What needs to be done is to create a new CA with openssl to get the ps3 to trust the connection to your computer. Now we cannot simply upload the new certificate we generate to the legit ps3. Now this is where I didn't have time to actually perform the whole setup, but I was thinking what had to be done is pass the new cert in between the connection from PS3. So to get it working it should look like this PS3 (legit), Second computer, 3rd computer.
Have the PS3 send out the request to sign in it then sends header information to your second computer that holds the fake cert and finally your third computer which is setup to arp spoof which will then be a trusted connection from the second computer and unencrypt the headers. The PS3 WILL fail the login this is normal but we are just trying to grab the new passphrase to inject it into charles or whatever tool.
Now this was where I last left off when I was playing around with it so I never got a chance to try it out. And when I get a break from working 6 days a week I will probably try this out but I am hoping someone understands what I am talking about and tries it out. "
Well that sounds like a good idea...^^^ comment from the link in the post
Your PS3 would still have to be OFW 3.60+ which would disable all jailbroken features in order for it to output the new Passphrase.
Now doing it with a legit PS3 and the latest update. There is the same hash problem. To grab the passphrase is actually pretty easy. All that needs to be done is as follows and hopefully someone out there can build off the work I have already done so here goes.
Performing a MIM on a PS3 from a computer connected to the same network. This will grab the header that is needed and output in plain text the new passphrase. This can be done on a jailbroken PS3 simply because we can change the file. Now doing this method on a legit PS3 will NOT work. What needs to be done is to create a new CA with openssl to get the ps3 to trust the connection to your computer. Now we cannot simply upload the new certificate we generate to the legit ps3. Now this is where I didn't have time to actually perform the whole setup, but I was thinking what had to be done is pass the new cert in between the connection from PS3. So to get it working it should look like this PS3 (legit), Second computer, 3rd computer.
Have the PS3 send out the request to sign in it then sends header information to your second computer that holds the fake cert and finally your third computer which is setup to arp spoof which will then be a trusted connection from the second computer and unencrypt the headers. The PS3 WILL fail the login this is normal but we are just trying to grab the new passphrase to inject it into charles or whatever tool.
Now this was where I last left off when I was playing around with it so I never got a chance to try it out. And when I get a break from working 6 days a week I will probably try this out but I am hoping someone understands what I am talking about and tries it out. "
Well that sounds like a good idea...^^^ comment from the link in the post
what is a MIM and what program would be usefull in finding the passphrase
08-12-2011, 09:14 PM
#24
Jakeyy
Expect the unexpected!
Originally posted by Bama205
i'm not trolling bro,i have the right to my opinion just like everyone else.also gitbrew said its a ''exploit''<------
so a custom ''firmware'' is not a exploit?
im well aware he said this
[ATTACH=CONFIG]10964[/ATTACH]
[ATTACH=CONFIG]10963[/ATTACH]
so a custom ''firmware'' is not a exploit?
im well aware he said this
[ATTACH=CONFIG]10964[/ATTACH]
[ATTACH=CONFIG]10963[/ATTACH]
Yes CFW is a Exploit but Gitbrews new Exploit is not a CFW and they said they will not work on CFW above 3.55, and new news came around 40 mins ago that the new Exploit requires nothing other Internet connection
You must login or register to view this content.
The following user groaned Jakeyy for this awful post:
08-12-2011, 10:20 PM
#28
yousuck100
Keeper
Originally posted by Bama205
i believe i was talking to ''TrueScopes'' and i already knew it was a exploit homo!
LOL exploit home
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
